IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
Bulk Lookup
✦ IPv4 Address ✦ Domain ✦ MD5/SHA1/SHA256 Hash ✦ URL
INDICATOR
letsencrypt.org
Domain ⚠ 39 PULSE HITS
↓ CSV ↓ JSON
40
/100
MEDIUM
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
MEDIUM 40/100 confidence
Some evidence of suspicious activity. Further investigation recommended before action.
CLEAN LOW MED HIGH CRIT
0 25 50 75 100
OTX
30/30
39 pulses
VIRUSTOTAL
/35
N/A
ABUSEIPDB
/25
IPv4 only
URLHAUS
10/10
LISTED
General Information
Indicatorletsencrypt.org
Whois Domainhttp://whois.domaintools.com/letsencrypt.org
Typedomain
AlienVault OTX Analysis ↗ View on OTX
39
PULSE HITS
Pulse Hits 39
Indicator Type Domain
Threat Level
Validation akamai, majestic
ASSOCIATED PULSES
PULSE NAMEDATE
The Belasco Chain 2026-02-26
“Broken Seal” DocuSign-themed Delivery with Fileless Process Hollowing (Zeppelin/Bloat-A) 2026-02-13
www.port443.us 2026-03-16
Distributed Credential Exhaustion & C2 Orchestration via Golang-Based StealthWorker (ELF.Agent-VW) 2026-02-16
Clone by Q Vashti (excellent systemic analyzer I may add) 2026-03-12
VirusTotal Analysis ↗ View on VirusTotal
⚠ VirusTotal rate limit reached. Try again shortly.
URLhaus (abuse.ch) ↗ View on URLhaus
⚠ LISTED
URLHAUS
URLs Found 3
ASSOCIATED URLs
URL STATUS / TYPE DATE
http://letsencrypt.org//docs%23@ddl8.data.hu/ge... offline 2021-10-21
http://letsencrypt.org//%23@ddl8.data.hu/get/32... offline 2021-10-21
http://letsencrypt.org//docs@ddl8.data.hu/get/3... offline 2021-10-21